Solved: Traditional LAN to VXLan connectivity

nick.chalker · ‎07-27-2018

Hi, We are currently working on a migration of systems from our traditional network (VLAN's, STP etc.) to a third party hosting company running VXlan, overlay networks.

Unfortunately we have to maintain the existing IP space so extending l2 broadcast domain for each VLAN, to achieve this we will be cabling into our 2960x switch stacks (2gb ether-channels). To protect ourselves we will be specifying on the third party connected ports the allowed VLAN's, disabling cdp and setting storm control to a value of 10, to configure the backup link and ensure it doesn't become STP root we will be setting port-priority to 192 and VLAN cost to 24 for each of the migrating VLAN's.

As we have little experience of VXlan's we don't know if there is anything else we need to be aware of when connecting the two networks to ensure we protect our network.

Thank you in advance

Cheers

Daniele Giordano · ‎07-27-2018

Hi, the separation is done by the protocol. The provider will use a S-VLAN to "transport" your C-VLAN. You have configured the right policies to protect your network so you should not have problems.

Regards.

View solution in original post

Daniele Giordano · ‎07-27-2018

Hi, the separation is done by the protocol. The provider will use a S-VLAN to "transport" your C-VLAN. You have configured the right policies to protect your network so you should not have problems.

Regards.

nick.chalker · ‎07-29-2018

Thank you very much for your prompt response and reassurance that we are on the right track to protecting ourselves.

Cheers

Nick